Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Rest interfaces for Access Mgr). The supported version that is affected is 11.1.2.3.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTPS to compromise Oracle Access Manager. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Access Manager accessible data. CVSS 3.1 Base Score 4.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).
History

Thu, 26 Sep 2024 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: oracle

Published: 2021-07-20T22:43:36

Updated: 2024-09-26T14:02:35.313Z

Reserved: 2020-12-09T00:00:00

Link: CVE-2021-2358

cve-icon Vulnrichment

Updated: 2024-08-03T16:38:57.598Z

cve-icon NVD

Status : Modified

Published: 2021-07-21T15:15:25.057

Modified: 2024-11-21T06:02:57.493

Link: CVE-2021-2358

cve-icon Redhat

No data.